1 / 21

Data is the New Bacon

Data is the New Bacon. Isn’t everything better with bacon?. Eric Thomas IT Security Engineer B.S. Computer Science. Feel free to email any questions to thomasericdean@gmail.com. What is data?. “Data is the real currency of your company” - Satya Nadella CEO of Microsoft

rpuckett
Download Presentation

Data is the New Bacon

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Data is the New Bacon Isn’t everything better with bacon?

  2. Eric Thomas IT Security Engineer B.S. Computer Science Feel free to email any questions to thomasericdean@gmail.com

  3. What is data? “Data is the real currency of your company” - Satya Nadella CEO of Microsoft “In God we trust, all others bring data.” - W. Edwards Deming Engineer, statistician, professor “It is a capital mistake to theorize before one has data.” — Sherlock Holmes “Data beats emotions.” – Sean Rad CEO of Tinder

  4. What is data?

  5. Tech companies be all like…..

  6. Data I am interested in for my job • How many computers did not receive the most recent Windows Update? • How many out of date versions of Adobe Reader • Risk? • User login events • 5 logins in 10 seconds? • Login from corporate IP address followed by a login from China 5 minutes later? • Malicious websites that are visited • Computers making abnormal connections to other computers • A new laptop communicating with all the other computers in the organization • Server with critical business information making connections to a Russian IP address • A malicious file downloaded from a link in an email • Who else received the email • What other computers have this file on the system

  7. Who has data on you? What data do they have? • Your Internet Service Provider • Social Media Sites • Trackers on the web on sites you visit • Your employer? • Places you do business with • More to come? • Facial Recognition Systems (China) • ZuckerBook

  8. WHAT!?!?!?

  9. How do entities get your data and how is it possible? It can be tricky • HTTP vs HTTPS • Coffee shop example • DNS / Sites you visit • Can someone steal my password? • Who can see what and when? • It’s tricky • What can your employer see? • It depends • Apps? • Let’s look at some permissions

  10. App Permissions - Android Managing Android app permisions

  11. App Permissions - iOS Managing iOS app permissions

  12. Web Trackers Things you do on the web that can be tracked: • Search queries • Sites visited • Frequency a user revisits site • What is clicked • How long you are on a site • Scroll speed • Where you stop on the page • Mouse movements

  13. Android and iPhone apps What information is your mobile device sending? • Lots… Things to do? - link • Only give apps permission to access data that makes sense • Enable or disable app permissions one by one • Scan for viruses and other flaws • Turn off your location settings • Turn off location data in your photos….?

  14. Knowledge is Power • Calls from your credit union • Spoofs? • Texts from your boss • Spoofed emails • Hover to discover • Additional research when it is spoofed well

  15. What is possible? Anything… • Facetime? • Notepad? • LastPass? • macOS? • EternalBlue?

  16. Privacy • What data do you care about having out there? • Really? • Really…. • What do you do to protect yourself? • What information are you concerned with others having? • What information are you concerned with certain individuals having?

  17. What your friendly neighborhood IT Security Engineer does to protect himself • Password Manager!!!!!! • Top 10 • Yahoo hack 1 • Yahoo hack 2 • Ad Blocker • uBlock origin • Watch for fakes • VPN on public WiFi • What does VPN do? • VPN products • Free VPN? • I wouldn’t

  18. Things I like that you may like? • Google Dorks • intext:”stuffIwanttofind” • Filetype:”pdf”

  19. Technology questions??

  20. Additional links • Places to find Guidelines • NIST • FFIEC • NCUA • https://www.ncua.gov/newsroom/ncua-report/2018/new-tool-will-enhance-ncuas-cybersecurity-assessments-credit-unions

  21. FIN

More Related